A vulnerability classified as problematic was found in OpenClaw up to 2026.3.27 . This affects an unknown function of the component WebSocket Upgrade Handler . Such manipulation leads to allocation of resources. This vulnerability is listed as CVE-2026-41399 . The attack may be performed from remote. There is no available exploit. Upgrading the affected component is advised.